JP2007517274A - Systems, methods, and apparatus that enable processing using biometrically enabled and programmable magnetic stripes - Google Patents

Abstract

  The present invention includes a magnetic field generator (308) that is disposed within a base and is normally inert, a biometric sensor (310) disposed on the base, and a memory (312) disposed within the base. And a processor (314) disposed in the base and communicatively connected to the magnetic field generator (308), the biometric sensor (310) and the memory (312). A system, method and apparatus are provided. The processor (314) processes the received biometric information from the biometric sensor (310) to verify that the user is authorized to use the device, and the user is verified. And is operable to activate the magnetic field generator (308). A power source (316) is disposed in the base. The magnetic field generator (308) uses a magnetic stripe and one or more induction coils to create a spatially varying magnetic signal, or data obtained from swiping a magnetic stripe card through a magnetic card reader (330). To emulate the time-varying magnetic signal.

Description

  The present invention relates to the field of electronic devices and equipment used in the authentication and processing of commercial and security related transactions, particularly biometrically. The present invention relates to a system, method, and apparatus that enable processing using a magnetic stripe that is enabled and programmable.

Conventional technology

  The security of current magnetic stripe cards is suspicious due to the ease of card theft and card data 'skimming' for making and using fake cards. As shown in FIG. 1, cards such as access, credit, debit, identification, identification, security, stored value, and vendor-specific, etc. Current magnetic stripe cards 100 typically have a strip of magnetic material 102, which is commonly referred to as a magnetic stripe, embedded within a plastic or plastic or laminated substrate 104. The magnetic stripe 102 bears the cardholder's data, such as name, account number, card expiration date, and other important information. This information is typically stored in three data tracks in the magnetic stripe 102, which track carries a pattern of magnetization, which is stored information. Is a magnetic representation of Other common magnetic stripe card 100 well known to those skilled in the art, such as cardholder name, account number, expiration date, issuer, signature stripe, validation code, photo, etc. The characteristic features are not shown. The magnetic pattern on the magnetic stripe 102 is easily created, read and destroyed. As a result, the security of the cards 100 that rely solely on the magnetic stripe 102 for information storage and authentication is low, making their use questionable in very sensitive information applications. These types of cards are easily stolen and / or the data is skimmed to create and use fake or counterfeit cards.

  One way to increase the security of information bearing cards is the use of smart cards, also called chip cards. The smart card 200 also has a magnetic stripe, but they can be connected to a regular controller (embedded in a plastic or laminate substrate 204 under the terminal 202 to store cardholder information as shown in FIG. Depends primarily on the integrated circuit, also called the controller or processor. The integrated circuit is connected for communication with a set of metal terminals 202 designed to interface with a special reader. Other common features of smart card 200 known to those skilled in the art are not shown, such as cardholder name, account number, expiration date, issuer, signature stripe, verification code, photo, etc. The smart card 200 can incorporate a number of applications or accounts on a single card or other medium. As a result, the smart card 200 is widely recognized as a viable way to improve the effectiveness and security of a given card or device. Such a smart card 200 requires a reader that is different from the standard magnetic stripe reader that currently forms a virtual card reader infrastructure in the world. As a result, the adoption and widespread use of “true” smart cards (without magnetic stripes) has been slow.

  Various compromise techniques have been developed that incorporate some of the flexibility and security features of smart cards into magnetic stripe cards using either adapters or programmable magnetic stripes. For example, a smart card to magnetic stripe adapter is a "advanced magnetic stripe bridge" by Jacob Y. Wong. } "Is disclosed in Patent Document 1 issued on March 27, 2003. The Wong patent application describes an adapter or bridge used in a magnetic stripe card reader so that a smart card or other card without a magnetic stripe is placed in the bridge and electrically connected to the card. . Since the bridge has one edge that is the size of a credit card, the bridge can be swiped through the magnetic stripe reader while the card is still in the bridge. When this link occurs, the data from the card is in a format that emulates the data generated by swiping the track (s) of a typical magnetic card through a magnetic stripe reader. Sent from an on-card processor on the card through the bridge. As a result, the magnetic stripe reader can accept data from the magnetic stripeless card. Similarly, one developer, ViVOTech, Inc., places a fixed bridge in a magnetic stripe reader that can receive radio frequency (“RF”) data, It then emulates the feed of data into the magnetic stripe reader via RF to complete the transaction without requiring physical contact of the card with the reader. Both of these technologies require either a fixed or mobile adapter added to the card reader infrastructure so that data can be read from the card. This is possible, but it is still a modification to the global infrastructure that is undesirable for the unconstrained use of the card. The use of such bridges is cumbersome, adds cost and reduces reliability. In addition, this method also does not incorporate the user's authentication to provide protection against skimming or use by an unauthorized person.

  The use of programmable magnetic stripes is Jay. This is disclosed in Japanese Patent Application Laid-Open No. 10-2001 / 2002, titled “Universal Credit Card Apparatus and Method” by J. Carl Cooper. The Cooper patent application describes a card, where a number of electrical coils are created in the card such that one coil is under each data bit on the magnetic stripe on the card. Thus, when each coil is excited under the control of a processor on the card, it creates a magnetic field, which is a 0 or 1 data bit in the magnetic track. Can be magnetized to either, thereby producing a binary code, which, when applied in accordance with the ISO standard for magnetic stripe cards, is a standard card reader Can be read by When the ability on this card emerges, the processor can essentially "write" any data stored in the processor's memory to the magnetic stripe on the card. As in the adapter, the Cooper patent application does not provide any protection against card skimming or use by unauthorized persons. Furthermore, the need for multiple individual coils (one under each data bit on the magnetic stripe) results in significant costs when adding these coils to the design on the card. Such card power requirements are also a problem.

Therefore, there is a need for a practical and secure card that has the advantages of a smart card and that interfaces with a magnetic stripe reader without the use of an adapter. In addition, multiple account / application cards to reduce the risk to the device holder in case of loss or fraudulent capture of data in multiple accounts on the device And there is a need for proper authentication within the device.
U.S. Patent Application Publication No. 2003/0057278 A1, "Advanced Magnetic Stripe Bridge (AMSB)", Jacob Y. et al. Wong, published on March 27, 2003 U.S. Patent Application Publication No. 2002 / 0003169A1, “Universal Credit Card Apparatus and Methods”, J. Pat. Carl Cooper, published on January 10, 2002

  The present invention provides a system, method and apparatus for a practical and secure card or device that has the advantages of a smart card and interfaces with current worldwide magnetic stripe readers without the use of adapters or bridges. . Furthermore, the present invention provides for multiple account / application cards and devices to reduce the risk to the device holder due to loss of the device or unauthorized capture of data in multiple accounts on the device. Appropriate authentication is allowed. As a result, the present invention provides a secure and flexible system for security and / or commercial processing using access and credit, debit, identification, security, built-in value and vendor specific cards and / or devices. To do.

  The invention described herein is on a user's card / device such that the data in the stripe track can be spatially manipulated and managed by logic within the processor / controller of the card or device. Biometric authentication and the use of programmable magnetic stripes provide strict protection for magnetic stripe cards and devices. This is because the magnetic stripe data is modified or completely erased for cardholder protection and then recreated on-demand by a programmable feature built into the card or device. Make it possible. Instead, the data is stored in a processor / controller on the card and then sent to the card reader via a time-varying signal, thereby causing a magnetic stripe through the magnetic card reader. Emulate swipes. In addition, the card or device can provide such information via a contactless communication system. These capabilities also allow multiple sets of data and applications to be incorporated on a single card, device or media, thereby transferring it from the processor's memory on the card onto the magnetic stripe. It is a universal card / device with multiple sets of data (eg, accounts) and / or applications that can be downloaded temporarily, used for the desired application, and then modified or deleted. Finally, some or all of the above features can be disabled until the card owner enables them through the use of biometric sensors on the card and logic pre-registered with the card holder. (Disabled). As a result, maximum security is guaranteed, but it means that if the card is lost or stolen, it cannot be used and the speed of magnetic stripe data following the basic processing authorized by the owner This is because skimming can be virtually eliminated by simple correction and erasure.

  The present invention includes a base, a magnetic field generator disposed within the base and being normally inactive, a biometric sensor installed on the base, And a processor having a magnetic field generator, the biometric sensor, and a processor communicatively connected to the memory and disposed within the base. The processor processes biometric information received from the biometric sensor to verify that the user is authorized to use the device, and generates the magnetic field when the user is verified. Operable to activate the vessel. A power source is also disposed within the base and is electrically connected to the magnetic field generator, the biometric sensor, and the processor. The magnetic field generator uses a magnetic stripe and one or more induction coils to create a spatial magnetic signal or time-varying to emulate data obtained from swiping a magnetic stripe card through a magnetic card reader. Magnetic signals can be created. As a result, the magnetic field generator emulates a programmable magnetic stripe.

  The present invention also provides a method of enabling processing using a device containing information associated with one or more users, a magnetic field generator that is normally inert, and a biometric sensor. The method includes receiving authentication data from the biometric sensor, determining whether the authentication data is valid for one of the users, and when the authentication data is valid. At any time comprises activating the magnetic field generator and generating a magnetic signal corresponding to information associated with the authenticated user. The method is performed by a computer program, such as a middleware, embodied in a computer readable medium, where each process is implemented as one or more code segments.

  In addition, the present invention is communicatively connected to one or more user devices, one or more system interfaces operable to communicate with the user devices, and the one or more system interfaces. And a system processor. Each user device is a base, a magnetic field generator disposed within the base, which is normally inactive, a biometric sensor placed on the base, a memory disposed within the base, and the base A device processor disposed within and communicatively coupled to the magnetic field generator, the biometric sensor, and the memory. The device processor processes biometric information received from the biometric sensor to verify that the user is authorized to use the device, and when the user is verified, the magnetic field generator Is operable to activate. The user device is also disposed within the base and has a power source electrically connected to the magnetic field generator, the biometric sensor, and the device processor.

  Although the production and application of various embodiments of the present invention are discussed in detail below in connection with the certification and treatment of commercial and safety-related transactions, the present invention may be embodied in a wide variety of specific contexts. It should be appreciated that it provides many new applicable concepts that can be realized. The specific embodiments discussed herein are merely illustrative of specific ways to make and use the articles of the invention and do not limit the scope of the invention.

The present invention provides a system, method and apparatus for a practical and secure card or device that has the advantages of a smart card and interfaces with current global magnetic stripe readers without the use of adapters or bridges. To do. In addition, the present invention provides multiple store cards / application cards to reduce the risk to the device holder due to loss of the device or unauthorized capture of data in multiple accounts on the device. Allow for proper authentication in (account / application cards). As a result, the present invention provides a secure and flexible system for security and / or commercial processing using cards and / or devices for access, credit, debit, identification, security, built-in value and vendor specific.

  The present invention described herein includes biometric authentication on a user's card / device so that the data in the stripe's track can be manipulated and managed by logic within the processor / controller of the card or device; The use of programmable magnetic stripes provides stringent protections for magnetic stripe cards and devices. This means that the magnetic stripe data is modified or completely erased for the cardholder's defense and then recreated on demand by programmable features incorporated into the card or device. enable. Instead, the data is stored in a processor / controller on the card and then sent to the card reader via a time-varying signal, thereby emulating a magnetic stripe swipe through the magnetic card reader. In addition, the card or device can provide such information via a contactless communication system. These capabilities also allow multiple sets of data and applications to be embedded on a single card, device or media, thereby temporarily transferring it from the processor's memory on the card onto the magnetic stripe. To a general purpose card / device having multiple sets of data (accounts) and / or applications that are downloaded to, used for the desired application, and then modified or deleted. Finally, some or all of the above features may be disabled until the card owner enables them through the use of biometric sensors on the card and logic pre-registered with the card holder. Can be enabled. As a result, the card cannot be used if it is lost or stolen, and skimming is prevented by prompt modification or erasure of the magnetic stripe data following basic processing authorized by the owner. Maximum security is guaranteed because it can be virtually eliminated.

Referring now to FIG. 3, a block diagram of a system 300 for enabling processing according to one embodiment of the present invention is shown. In particular, the present invention communicates with one or more user devices 302, one or more system interfaces 304 operable to communicate with the user device (s) 302, and the one or more system interfaces 304. A system 300 having a system processor or controller 306 operatively connected is provided. Each user device 302 has a normally inert magnetic field generator 308, a biometric sensor 310, a memory 312, a device processor or controller 314 and a power source 316. The memory 312 and device processor 314 may be integrated in one integrated circuit. The device processor 314 is also a smart card processor (smart card).
processor and application specific integrated circuit {"ASIC"} chip. In addition, the power source 316 may be controlled by a power management unit 318. The magnetic field generator 308, biometric sensor 310, and memory 312 are all communicatively connected to the device processor 314. The magnetic field generator 308, biometric sensor 310, memory 312 and device processor 314 are all electrically connected to the power supply 316 via the power management unit 318. If the user device 302 does not have a power management unit 318, the magnetic field generator 308, biometric sensor 310, memory 312, and device processor 314 are all electrically connected to the power source 316. The device processor 314 processes the biometric information received from the biometric sensor 310 to verify that the user is authorized to use the device 302 and the user is verified when the user is verified. Operate to activate the magnetic field generator 308.

  The magnetic field generator 308 generates a programmable magnetic signal by creating either a spatial magnetic signal or a time-varying magnetic signal to emulate data obtained from swiping a magnetic stripe card through a magnetic field card reader. Emulate stripes (see FIG. 5B). The spatial magnetic signal is a magnetic stripe, either placed on or disposed within the substrate, and one or more induction coils disposed in the substrate under the magnetic stripe (Induction coils), and a control disposed within the substrate, connected to the one or more induction coils and operable to generate a magnetic signal via the one or more induction coils and the magnetic stripe (See FIG. 5B). In any case, the magnetic signal includes a user name, a user number, a device expiration date, approval / denial of processing, and binary data that allows other processing. A typical magnetic stripe includes three tracks, where each track has a set of magnetic data cells. Note that the magnetic field generator 308 may be configured to read a magnetic stripe from another device so that the device 302 can replace another device. Information read from the magnetic stripe will be stored in the memory 312 for later transmission by the magnetic field generator 308 upon appropriate authentication.

  The biometric sensor 310 includes a fingerprint sensor, a retina sensor or a voice sensor or other sensor device capable of detecting an individual's unique characteristics that can be compared to stored data. But you can. One example of such a fingerprint sensor has a matrix of points operable to detect high and low points corresponding to fingerprint ridges and valleys. Another example of a fingerprint sensor is an emitter and detector, where light projected by the emitter is reflected from the user's finger onto the detector.

  When the device 302 is initialized or linked to a user, the biometric sensor 310 is used to collect biometric information about the user. This biometric information is stored in the memory 312 as the user's biometric analog. Thereafter, and as described below with reference to FIG. 7, biometric information or authentication data is obtained by the biometric sensor 310 for authentication and the device processor. To 314. The device processor 314 determines whether the authentication data is valid for one of the users by comparing the authentication data with a biometric template stored in the memory 312. If the authentication data is valid, the device processor 314 activates the magnetic field generator 308 and provides binary data to the magnetic field generator 308 for transmission as a magnetic signal. The magnetic field generator 308 then generates magnetic signals corresponding to the information associated with the authenticated user and the selected application. The device processor 314 then deactivates the magnetic field generator 308 after the magnetic field generator 308 has been active for a specified time. Alternatively, the device processor 314 may deactivate the magnetic field generator 308 when the biometric sensor 310 no longer detects the authorized user or a processing completion signal is received. The present invention includes (1) keeping the magnetic field generator 308 normally inactive, (2) activating the magnetic field generator 308 and transmitting a magnetic signal only after the user is authorized, and (3) After a certain amount of time, the magnetic field generator is disabled, thereby reducing the power consumption of the device 302 and increasing security. Additional power consumption can be achieved by putting the device 302 in sleep or low power mode until certain activation parameters are met, such as receiving an external signal, contacting the biometric sensor 310 or user input / commands. By keeping in low power mode, it can be reduced.

  The power source 316 includes a battery, a piezoelectric generator, a solar panel, an electromagnetic energy converter, and a passive radio frequency identification (passive radio frequency identification (passive radio frequency identification). ) "} As used in the system], may include a kinetic energy converter or any combination thereof. For example, the power source 316 may include a battery, a power generator, a converter, and a multiplexer. The converter is electrically connected to the power generator and can be used to convert the power received from the power generator into power usable by the device 302 or to charge the battery. The battery management unit 318 is connected to the battery. The power multiplexer is connected to the battery management unit 318 and the converter. The power multiplexer is operable to determine whether to draw power from the battery management unit, from the converter, or from both.

  The device 302 also has a user interface 320 that is communicatively connected to the device processor 314 and electrically connected to the power source 319 {via a power management unit 318}. The user interface 320 may include a touch pad, one or more buttons, a display, a voice sensor, or other known user interface. The device 302 may also have a contactless interface 322 that is communicatively connected to the device processor 314 and electrically connected to the power source 316 (via the power management unit 318). The contactless interface 322 may include a wireless communication antenna, an optical transceiver, or other known contactless communication methods. In addition, the device 302 may also have a smart card interface 324 that is communicatively connected to the device processor 314 and electrically connected to the power source 316 (via the power management unit 318). In addition, the device 302 is communicatively connected to the device processor 314 and optically or other type of input / output (I / O) electrically connected to the power source 316 (via the power management unit 318). ) Interface 326 may be included.

The parts of the device 302 are typically placed in or placed on a substrate. For example, the biometric sensor 310, user interface 320, smart card interface 324, and optical or other I / O interface 326 are typically installed on the board, but the memory 312, device Processor 314, power supply 316 and power management unit 318 are typically located within the board. The magnetic field generator 308 and the non-contact interface 322 can be installed on the base or placed in the base. The type of material used for the substrate and the final properties of the substrate will depend on the desired application and operating environment for the device 302. In many cases, the substrate is a semi-flexible material such as plastic or a plastic or a laminate material. The infrastructure then includes access cards, credit cards, debit cards, identification cards, mini cards, security cards, stored value cards and vendor-specific cards, etc. It can be integrated in the card. The infrastructure may also be integrated into passports, immigration cards and visas, and other such travel credentials. In addition, the infrastructure includes personal data assistants (PDAs), telecommunications devices, pagers, computers and email transceivers, and other individuals. It may be integrated into a personal communication device. Further, the base may be integrated in a watch, jewelery, key ring, tag and eye glasses, and the like.

  The one or more system interfaces 304 include a device initialization interface 328, a magnetic reader 330, a wireless communication interface (transceiver) 332, a smart card reader 334, or an optical or other input / output interface 336. May be. The one or more system interfaces 304 are used to communicate with the user device 302, either physically or non-contacting, depending on the desired application and embodiment. Other non-system interfaces include a battery recharger, a personal computer interface or a personal data assistant. The one or more system interfaces 304 are communicatively connected to a system processor or controller 306, which in turn is connected to a database 338 or one or more remote systems via a network 340. Alternatively, the computer 342 may be communicably connected. The network 340 may be a local area network or a wide area network such as the Internet.

  Referring now to FIG. 4A, a front 400 of an exemplary embodiment of a card for enabling processing using the biometrically enabled and programmable magnetic stripe of the present invention is shown. The card is shown in the form of a credit card or a debit card, but may be used as an access card, an identification card, a mini card, a security card, a built-in value card, a specific vendor card, and the like. The front face 400 of the card includes an issuer's name 402, a biometric sensor 310, a photo or I / O interface 404 (user interface 320 or other I / O interface 326), smart It has a card interface 324, a card number 406, an expiration date 408, a card holder name 410, and a hologram 412. Other information and features may also be placed on or in the card. As will be appreciated by those skilled in the art, the features described above can be rearranged or removed to suit the particular application for the card.

  Referring now to FIG. 4B, there is shown a backside 450 of an exemplary embodiment of a card that enables processing using a biometrically enabled and programmable magnetic stripe in accordance with the present invention. The backside 450 of the card has a magnetic field generator 308 (programmable magnetic stripe), a range 452 for the cardholder to write an authorized signature, and issuer contact information and discrimers 454. . Other information and features may also be placed on or within the card. As will be appreciated by those skilled in the art, the above features can be rearranged or removed to suit a particular application for the card.

Referring now to FIG. 5A, a block diagram of a programmable magnetic stripe 500 (308 in FIG. 3) using a number of inductive coils 518-530 is shown according to one embodiment of the present invention. The programmable magnetic stripe 500 (308 in FIG. 3) has a magnetic stripe 502, a number of inductive coils 518-530 and a control circuit 532. The magnetic stripe 502 includes one or more sets of magnetic data cells 504-516. For example, the magnetic stripe 502 typically includes three tracks or sets of magnetic data cells 504-516. The individual inductive coils 518-530 are placed directly under each of the binary magnetic data cells 504-516. Each inductive coil 518-530 is electrically connected to a control circuit 532, which may be integrated within the device processor 314 (FIG. 3). When a positive or negative current is applied to each coil 518-530, it is the polarity of the magnetized particles in the binary magnetic data cell 504-516 of the data track of the magnetic stripe 502 immediately above it. ), Thereby creating a spatially varying binary code or magnetic signal in the magnetic stripe 502 material, which is read by a standard magnetic card reader when such a binary code is applied in accordance with the ISO standard It is possible.

  Referring now to FIG. 5B, in accordance with another embodiment of the present invention, a single induction coil 552 is used to send emulated time-varying magnetic stripe data directly from the controller on the card to the magnetic card reader. A block diagram of a programmable magnetic stripe 550 (308 in FIG. 3) is shown. The programmable magnetic stripe 550 (308 in FIG. 3) has a magnetic stripe 502, an inductive coil 552, and a control circuit 554. The magnetic stripe 502 includes one or more sets of magnetic data cells 504-516. For example, the magnetic stripe 502 typically includes three tracks or sets of magnetic data cells 504-516. A long inductive coil 552 provides the magnetic stripe 502 and its corresponding binary magnetic data cell so that when the card is swiped through the magnetic reader, a time-varying signal is transmitted to the magnetic card reader head. It is installed directly under the total length of 504-516. The data rate is determined based on the minimum and maximum swipe speeds that a standard reader can accommodate. In other words, the one inductive coil 552 is physically adjacent to the card reader head for the entire time required to transmit the time-varying signal from the card to the card reader. Long enough to. The inductive coil 552 is electrically connected to the control circuit 554, which may be integrated within the device processor 314 (FIG. 3). Establishing the configuration in this manner emulates a time-varying data stream of cards swiped through the reader, thus, if multiple spatial in the magnetic stripe 502 are emulated. To provide the same magnetic data stream to the reader heads of the magnetic stripe reader as seen if the cards with binary data in the data cells 504-516 distributed in are swiped through the reader. In addition, the inductive coil 552 can be pulsed with varying current and current direction. This magnetic signal will thus emulate the data generated by swiping a magnetic stripe card with the desired information embedded in the individual data cells 504-516 of the stripe 502.

  Note that the individual data cells 504-516 are always empty. There are several ways in which the card can be activated so that data transfer can be initiated. For example, the card can be formed in the ring of the biometric sensor 302 (FIG. 3) so that when the user is ready to authenticate himself / herself, the card is “wakened”. up) ”using an“ enable button ”on the card, such as a low-power capacitance sensor that can be used to begin using the card. Can be activated first by an authorized user. The card user's authentication is time stamped for use in determining the length of time to allow the transmission of emulated data. In addition, the magnetic reader 330 (FIG. 3) can start a guard that signals a detector on the card to alert the card that the card is facing the card reader 330 (FIG. 3). start sentinel). Once the card is alerted that it is about to be swiped through the reader 330 (FIG. 3), it sends the emulated time-varying data from the device processor to the inductive coil 552. Of the data that would be created by swiping the card through the reader 330 (FIG. 3) using the spatially varying data contained within the individual data cells 504-516. Emulation and transmission to the reader 330 (FIG. 3) are performed. All such transmissions of emulated card data include a valid biometric authentication of the card user, followed by the fact that the card is facing the reader head, and the reader 330 (see FIG. 3) The card detects that the reader 330 (FIG. 3) is ready to accept the emulated data stream provided by the device processor because 3) has recognized the starter on the card It depends on how you decide. Once the initial reading of data by the magnetic card reader 330 (FIG. 3) is completed, the transmission of data from the device processor 314 (FIG. 3) is stopped. This action prevents card information from skimming after the basic processing is completed.

  Referring now to FIG. 6, a programmable magnetic card 600 is equipped with an inductive coil illustrated in FIG. 5A or 5B. A biometric sensor 310 on the card is incorporated to allow active authentication of the card user. This is accomplished by sending a biometric template from the biometric sensor 310 to the control processor 314 on the card, which processor on the card sent from the biometric sensor 310. A matching operation is performed with a template obtained from an authorized user, and such authorized template is stored in the control processor 314 (memory 312) from the initial registration of the authorized card owner and / or user. ). Once such biometric matching is achieved, the control processor 314 should be downloaded into a separate data track of the programmable magnetic stripe 308 (magnetic field generator; see also 502 in FIGS. 5A and 5B). Authorizing the required account numbers and / or card numbers and / or card applications, the magnetic stripe then allows the cards to be used with standard card readers through the current global infrastructure.

  Referring now to FIG. 7, a flowchart of an exemplary authentication method 700 for using a device such as device 300 (FIG. 3) according to the present invention is shown. The device includes information associated with one or more users, a normally inactive magnetic field generator and a biometric sensor. The device can be used to allow any kind of processing such as access processing, control processing, financial processing, commercial processing or identification processing. The device is always in standby or sleep mode, indicated by block 702. If one or more activation parameters are met, as determined at decision block 704, the device is switched to the active mode at block 708. Otherwise, the device remains in standby mode as indicated by block 706. The one or more activation parameters, data detection from the biometric sensor (eg, 310 in FIG. 3), external signal detection from the interface (eg, 308, 322, 324, 326 in FIG. 3) or user Receiving data from the interface (eg, 320 in FIG. 3) may be included. If the device is switched to active mode as determined at decision block 710, no authentication data is received and the activation timed out as determined at decision block 712. out), the device is switched to standby mode at block 714 and again waits for activation parameters at block 704. However, as determined at decision block 712, if the activation mode does not time out, the device continues to wait for authentication data to be received until the activation time times out. However, if authentication data is received from the biometric sensor as determined at decision block 710, the authentication data is verified at block 716. The verification process compares the authentication data with a stored biometric template of one or more users authorized or registered to use the device, so that the authentication data is the user's one. Determine whether it is valid for humans. If the authentication data is not valid when determined at decision block 718 and the activation time expires when determined at decision block 712, the device is switched to standby mode at block 714 and again at block 704. Wait for activation parameters. However, if the activation mode does not time out as determined at decision block 712, the device will wait again for authentication data to be received until the activation time times out.

  However, if the authentication data is valid when determined at decision block 718, information associated with the authenticated user is accessed at block 720 and provided to the device output at block 722. The information can be a simple approval or denial of the process, or the user's personal information necessary to enable or complete the process. As previously described with reference to FIG. 3, the output of the device is a magnetic field generator 308 (programmable magnetic stripe), contactless interface 322, smart card interface 324, or optical or other eye / auto An interface 326 may be included. For example, using a magnetic field generator 308, this process would include activating the magnetic field generator 308 and generating a magnetic signal corresponding to information associated with the authenticated user. In addition, the authentication process (block 716), information access process (block 720) or information output process (block 722) may also display information to the user and select information that allows the user to perform the processing. Or it may allow the user to select the device output or the interface to be used. Once the processing is complete, the information is cleared from the device output (s) at block 728, as determined at block 724, the device is switched to standby mode at block 714, and the device is switched to block 704. Wait for various activation parameters. However, if the process does not complete as determined by decision block 724 and the process does not time out as determined by decision block 726, the process continues to wait for the process to complete. . If the process has timed out as determined at decision block 726, the information is cleared from the device output (s) at block 728, the device is switched to standby mode at block 714, and The device waits for various activation parameters at block 704. If the process times out (eg, the magnetic field generator was active for a specified time) or if the biometric sensor no longer detects the authorized user, the process It can be set to interrupt and deny it. The method may be performed by a computer program, such as middleware, embodied in a computer readable medium, each step being performed by one or more of which are all performed on the card / device. Note that it is implemented as code segments.

  Referring now to FIG. 8, one example of an exemplary device 800 for providing safe physical and commercial processing in a non-contact manner using biometrics is shown. As will be described in more detail later, the device 800 includes a biometric sensor 802, a radio frequency (“RF”) antenna 804, a controller 806, a control button 808, a dynamic information display 810. , Magnetic information media components 812, and RF power conversion and power management unit 814. A number of inter-components communication paths 816 provide connections between the various components of the device 800.

The RF antenna 804 may serve multiple functions. For example, it may capture RF energy from an RF field generated by an RF power source, and two-way communication (two-way) with an associated reader / writer device (not shown). communication) may be supported. The antenna 804 may be one antenna capable of performing both functions, or one antenna is for capturing RF energy from the RF field and the other antenna is connected to the reader / writer device. Multiple antennas may be provided, such as for supporting bi-directional communication. The communications may include, for example, authenticated identification of the person operating the device 800, various purchases and financial processing, air ticket booking, and airport security check points, And other interactions between the device 800 and the reader / writer device may be included. These communications may be secured using a mechanism such as data encryption. It is understood that other communication components such as audio or optical components may replace or supplement the antenna 804. In addition, the antenna 804 may be operable to function at wavelengths other than RF.

  The biometric sensor 802 is used to detect a physical attribute of a user of the device 800 and generate an analog of this physical attribute. The analog is then made available to the controller 806. In particular, the biometric sensor 802 is designed to detect certain physical attributes of a person and extract a unique analog of that person. To be useful in establishing positive identification, the analogs need to be well individualized to be unique to everyone. In addition, the analog trusted copy-template- should be captured. Analogs subsequently detected by the biometric sensor 802 are then compared against the template analog. Various physical attributes, such as fingerprints, voice prints, and retina or iris prints may be used for identification purposes.

  The controller 806 interacts with the biometric sensor 802 and other components of the device 800 to perform various functions. For example, the controller 806 may use the physical attributes not only for long-term storage as a trusted template analog of an authorized user, but also for immediate comparison with a stored and trusted template analog during an authentication procedure. The analog of may be taken in. The controller 806 may also determine whether the comparison indicates a match between the template analog and the analog captured by the biometric sensor 802. In addition, the controller 806 may control the dynamic information display 810, respond to inputs from the control button 810, and control the magnetic information media component 812. In addition, the controller 806 supports bi-directional communication with the associated reader / writer device (FIG. 9) via the RF antenna 804. The controller may be a single controller / processor or may include multiple controllers / processors.

  The dynamic information display 810 may be used not only to display information to the user, but also to enable the user interaction process using the control buttons 810. The magnetic information media component 812 may be operated so that it provides information via a magnetic field. The RF power unit 814 may convert RF radio energy into electrical energy and control storage of the electrical energy and distribution of the electrical energy to other components in the device 800. It will be appreciated that the device 800 may also have a battery and / or other power means for use as a backup or alternative power source for the RF power control unit 814.

Referring now to FIG. 9, a device that enables contactless interaction with a reader / writer device 902 is illustrated in an exemplary environment 900. To achieve this non-contact interaction, the device 800 is shown with an antenna 804, as described with reference to FIG. Device 902 not only uses one or more antennas 903 to communicate with device 800, but also emits an RF field 906 for the purpose of supplying power to a compatible device, such as device 800. In operation, a two-way communication link 908 between the reader / writer device 902 and the device 800 is established.

  It will be appreciated that many different reader / writer device configurations may be used. For example, the reader / writer device 902 may communicate with other devices or with a network. Further, the reader / writer device 902 may communicate with other devices or networks. Further, the reader / writer device 902 may have the RF power source, or they may be separate devices. An alternative source of RF power may be used, but for clarity purposes, the reader / writer device 902 of the present example has an RF power source.

  With reference to FIG. 10, and continuing reference to FIGS. 8 and 9, the device 800 may operate within the environment 900 using the method 1000 described below. In step 1002, the device 800 is placed in an RF field 906 emitted by the reader / writer device 902. When placed in the RF field, the device 800 takes power from the RF field and the power provides power to the electronics of the device 800. In step 1004, the biometric sensor 802 is driven by a user. The driving method depends on the type of biometric sensor (for example, fingerprint for fingerprint sensor, speech for voice sensor, etc.). In step 1006, an authentication process is performed by the device 800. As in the previous process, the authentication process depends on the type of biometric sensor. For example, the detected fingerprint or voice may be compared to a template in the device 800 memory. At step 1008, a determination is made as to whether the user is authenticated. If the authentication process does not authenticate the user (fails to validate), the method 1000 returns to step 1004. If the user is validated during the authentication process, the method continues to step 1010 where the device 800 continues with the desired processing at the reader / writer device 902. Once this occurs, the device 800 may be removed from the RF field 906 at step 1012, which powers down to the device 800.

  Referring now to FIG. 11, in another embodiment, the device 1100 illustrates an embodiment of the present disclosure that uses a form element similar to that of a credit card. The credit card form element of the device 1100 includes a fingerprint sensor 1102, an RF antenna 1104, a first controller 1106, a second controller 1108, a function selector button 1110, an electro-luminescent display (electro-). It has several parts, such as a luminous display 1112 and a magnetic strip 1114. In this example, the functions of both controllers may be provided by a single controller, but the first controller 1106 is an application specific IC {“ASIC”} chip and the second controller is smart. Card chip.

The ASIC 1106 is a custom integrated circuit chip developed for use within the device 1100. The Asic 1106 has a Random Access Memory (“RAM”), which temporarily stores the current fingerprint analog detected by the fingerprint sensor 1102 and for processing calculations. It may be used to store instant results (eg fingerprint comparison, etc.) temporarily. The ASIC 1106 may also have non-volatile memory (eg, flash memory or EEPROM) to store and retrieve one or more fingerprint template analogs that are used for comparison to the current fingerprint analog.

  Circuitry included in the ASIC 1106 provides an interface between the ASIC 1106 and the fingerprint sensor 1102. In this example, the ASIC 1106 includes a dedicated program and a temporary memory that allows the ASIC 1106 to use an array of processing elements to execute instructions stored in the ASIC 1106 in parallel. It has a microprocessor. The instructions allow the ASIC 1106 to make a comparison between the current fingerprint analog and the template fingerprint analog. Other instructions included in the ASIC 1106 may provide support for authentication signals sent to the smart card 1108 after the authentication process is completed. In addition, the ASIC 1106 may be used to drive the electroluminescent display 1112, read function control buttons 1110, and drive the programmable magnetic strip 1114.

The smart card chip 1108 may support various application programs. These applications include, for example, storage / retrieval of personal demographics information, storage / retrieval of digitized images of cardholders, “electronic wallets”
“Purse” function, financial transactions, purchases, etc. In addition, the smart card chip 1108 supports two-way communication data transfer to support secure communication. Various encryption functions may be performed, in this example the communication and cryptographic processing is based on known standards, but a private protocol may be used if desired. The card chip 1108 is expected to support smart card interactions such as identification validation, credit card processing, and the like. Capabilities can be handled by the ASIC 1106, the smart card chip 1108, any combination of the ASIC 1106 and the smart card chip 1108, or a single chip.

  The fingerprint sensor 1102 is designed to detect fingerprint information and provide the detected information to other parts of the device 1100. In this example, the fingerprint sensor 1102 has a polymer thick film {"PTF"} structure, which structure is required for the fingerprint sensor 1102 to be implemented on the device 1100. And provides ruggedness. As described in detail below with reference to FIGS. 12 and 10, the fingerprint sensor 1102 has a matrix of points operable to detect high and low points corresponding to fingerprint peaks and valleys. The point is captured and used by the ASIC 1106 to determine if the detected fingerprint analog matches the stored fingerprint template analog in memory.

Referring to FIG. 12, in one embodiment, the PTF sensor 1102 includes a row electrode (row).
It has a rectangular arrangement of electrodes 1202 and column electrodes 1204. Note that more or fewer columns and rows may be included in the PTF sensor 1102 depending on factors such as the desired resolution of the PTF sensor 1102 (eg, desired data points Number). Electrical connections from the row and column electrodes 1202, 1204 are routed to the ASIC 1106.

In operation, the fingerprint analog detected by the PTF sensor 1102 is captured in the ASIC 1106 as a numerical sequence. For illustration purposes, the row and column electrodes 1202, 1204 may be viewed as a two-dimensional matrix of pixels, with the numbers representing the intersections between the row and column electrodes. The number may be combined with gray scale values, and the analog representing the fingerprint is generated from a matrix of gray scale values. The matching between the stored template fingerprint analog and the candidate fingerprint analog does not have to depend on the visual process, so it is not necessary to convert the captured analog into a visible image Understood. However, conceptualizing the numerical value as an image is convenient for the purpose of evaluating the sensor resolution used to support fingerprint authentication. It is generally accepted that a graphical resolution of 100 to 500 at a dot {"dpi"} of about 2.54 cm (1 inch) is sufficient for fingerprint authentication. In this example, the PTF sensor 1102 has 200 row electrodes and 200 column electrodes arranged in a matrix of about 1.27 cm (1/2 ") by about 1.27 cm (1/2"), Corresponds to the graphical resolution of DPI.

  Referring now to FIG. 13A, a schematic depiction of the functional layers of one embodiment of the PTF sensor 1102 of FIG. 11 is shown. The PTF sensor 1102 includes an annularly shaped top electrode 1302; an insulator 1304 having a backside reflector; and a functional layer having an electro-luminescent layer 1306. Insulator layers 1308, 1312, 1316, and 1320; row electrodes 1310; column electrodes 1314; electro-resistive layers 1318; and electrodes 1322; and substrate layers 1324; Consists of. The base layer 1324 is part of the base for the overall device 1100.

  In operation, when a user of the device 1100 places a finger or thumb on the surface of the PTF sensor 1102 (understood that both fingers and thumb are intended, but hereinafter only designates the finger) The finger contacts the top electrode 1302 and is electrically grounded to the top electrode 1302. When a voltage is applied to the row electrode 1310, an electric field is generated between the row electrode 1310 and the top electrode 1302. The strength of the generated field depends on how close the finger is to the top electrode 1302. For example, a fingerprint peak is relatively close to the top electrode 1302 of the PTF sensor 1102 and changes the generated field in a detectable manner. Fingerprint troughs are farther away from the PTF sensor 1102 than fingerprint peaks, and change the generated field in a differentially detectable manner from changes caused by fingerprint peaks.

  The electro-luminescent layer 1306 emits more or less light as the electric field impinging thereon changes, thereby generating an analog of the fingerprint incident on the PTF sensor 1102. A reflector component of insulator 1304 having a back side reflector layer serves to reflect the omnidirectional light emitted by the electro-luminescent layer 1306, thus intensifying the fingerprint analog. . The PTF sensor 1102 may operate by applying a bias voltage to only one row electrode at a time and biasing and unbiasing one row at a time. This has the effect that the electro-luminescent layer 1306 generates an analog of a long thin strip of the fingerprint. By detecting each of these analogs and combining them when the row sequence operation is complete, a complete analog is collected.

It is the property of the electro-resistive layer 1318 that when it is placed in an electric field, its resistance value changes with the brightness of the light incident on it. The light emitted by the electroluminescent layer 1306, which is analog of the fingerprint, passes through intervening layers 1308, 1310, 1312, 1314, and 1316 and strikes the electro-resistive layer 1318. The electro-resistive layer 1318 is placed in an electric field by imposing a DC voltage bias on the electrode 1322 with respect to the column electrode 1314, which causes the electro-resistive layer to receive light incident thereon. It exhibits a resistance that varies with brightness, thereby forming an analog of the fingerprint. When a voltage is applied to the column electrode 1314, the impedance between the column electrode 1314 and the electrode 1322 can be measured. This measured impedance is directly related to the changing resistance of the electro-resistive layer 1318 and thus the analog of the fingerprint. Thus, as described above, the analogs of the fingerprints are captured and stored by activating each row electrode one after another.

  The ASIC 1106 controls the sequential activation of the row electrode 1310, the reading back of the changing resistance from the column electrode 1314, and other functions of the PTF sensor 1102. It will be appreciated that other approaches may be used, such as reading one column at a time for each row or reading multiple rows / columns simultaneously. Furthermore, although the above description focuses on the use of the PTF sensor 1102 as a fingerprint sensor, the principle of operation of the PTF sensor 1102 is general and is not limited to fingerprint analog capture.

  Referring now to FIG. 13B, one embodiment of a portion of device 1100 illustrates a biometric sensor 1102, a display 1112 and an RF antenna 1104 formed on a substrate 1324. The biometric sensor has layers 1302-1322 as described in connection with FIG. 10, the display 1112 has layers 1326-1336, and the RF antenna has layers 1338-1348. As illustrated in FIG. 13B, each of the parts 1102, 1112, 1104 share multiple layers (eg, 1322, 1336, and 1348). This sharing simplifies the design of the device 1100 and reduces manufacturing costs.

  Referring again to FIG. 11, the RF antenna 1104, which may include one or more antennas, captures RF energy from an RF field emanating from an RF power source and both with a combined reader / writer device (not shown). Two-way communication may be supported. The captured RF energy is converted to electrical energy and stored in the device 1100. In some embodiments of the device 1100, a rechargeable battery may provide power to the electronic component when no RF energy field is present. Such a battery may be charged via an RF energy field or alternative charging means.

The electro-luminescent display 1112 provides the ability to display information to the user of the device 1100. For example, the information may be “card not (card not)
present ”credit card number that supports processing,“ electronic purse ”balance, air travel flight and seat assignment information, and similar information Further, interaction with the display 1112 is accomplished via a function control button 1110. For example, the button 1110 may cause the display 1112 to be connected (if the device 1100 stores multiple numbers). It may be used to select a credit card number viewed through or enter a personal identification number. -The flexibility of 1112 aids its use with a form factor similar to the card of the device 1100. Although two control buttons 1110 are illustrated, other numbers and shapes of function control buttons may be used. Is understood.

  A dynamic magnetic strip 1114 is provided to provide compatibility with current reader devices. The dynamic magnetic strip 1114 may be used in either a fixed or dynamic mode. In the dynamic mode, magnetically stored information, such as a credit card number, may be changed under the control of the ASIC 1106.

  Referring now to FIG. 14, the illustrated power circuit 1400, as used in the device 1100 of FIG. 11, is depicted. When appropriate RF energy is incident on the device 1100, the RF energy couples into the RF antenna 1402. From the antenna 1402, the energy enters an RF-to-DC power converter 1404, which converts the AC RF field into a DC-like circuit (DC-like). a full-wave rectifier for converting to circuit). Capacitance is provided to buffer the AC peak variation to a DC-like source. The intermediate power generated in this process may be used for various purposes such as charging the battery 1406 and supplying power to the device 1100 if the battery 1406 is below its full capacity. Good. The battery 1406 may be charged through the battery management unit 1408. A smart power multiplexer 1410 may be used to determine whether to draw power from the battery management unit 1408, from the RF to DC power converter 1404, or both.

  The voltage regulator 1412 creates a stable DC voltage level to power the device 1100. When no RF energy is coupled into the RF antenna 1402, the RF to DC converter 1404 will not function and power may be drawn from the battery management unit 1408 by the smart power multiplexer 1410. As before, the voltage regulator 1112 creates a stable voltage level to power the device 1100. In other embodiments, the power circuit 1400 may not rely on a battery or a rechargeable battery, and may rely solely on power drawn from the RF field.

  Referring now to FIG. 15, an exemplary template storage method 1500 illustrates one embodiment of capturing and storing a fingerprint analog template for the device 1100 of FIG. In step 1502, the user places the device 1100 in an RF field emitted by a reader / writer device. As previously described, the device 1100 draws power from the RF field. In step 1504, the user places his thumb or finger on the fingerprint sensor 1102, and in step 1506 the device 1100 determines whether a template fingerprint analog is already stored. If it is determined that the template fingerprint analog is not stored, the method 1500 continues to step 1508. In step 1508, the user's incident fingerprint is detected by the fingerprint sensor 1102, a fingerprint analog is generated by the fingerprint sensor 1102, and the ASIC 1106 stores the fingerprint analog as a template fingerprint analog. If a fingerprint template analog has already been stored, the method 1500 continues to step 1510 where the device 1100 is removed from the RF field. It will be appreciated that if the fingerprint template analog is already stored, other events occur before step 1510, as illustrated in FIG.

  Although not shown in this example, multiple template fingerprint analogs may be stored in the device 1100. The template fingerprint analog may represent multiple fingerprints of one individual or may represent fingerprints of different people. For example, the owner of the device 1100 can securely control the initialization of a number of template fingerprint analogs and selectively promise which template fingerprint analogs are used to authenticate identity and authorize processing. This is accomplished by implementing a method that allows to engage. Alternatively, if the device 1100 is to be used in an environment that requires higher security, the user of the device 1100 will appear directly in person (appear in person) and use conventional methods {eg, driver's license, birth certificate It is necessary to verify his or her identity using (birth certificate), etc.}. After verification, the user's template fingerprint analog may be placed in the device 1100 as described above or by other means (eg, a scanner that transfers the template fingerprint analog into the device 1100).

  Referring now to FIG. 16, in another embodiment, a method 1600 illustrates one method of operation for the device 1100. In step 1602, the device 1100 is placed in an RF field emitted by a reader / writer device as previously described. When placed in the RF field, the device 1100 captures power and provides energy to the electronics. In step 1604, the user places one of his fingers on the fingerprint sensor 1102. As described above, the fingerprint sensor 1102 captures the analog of the fingerprint and sends the analog to the ASIC 1106.

  In step 1606, an authentication process is performed by comparing the captured fingerprint analog with one or more template fingerprint analogs stored in memory. At step 1608, a determination is made as to whether the user is authenticated (eg, whether the captured fingerprint analog matches a stored template fingerprint analog). If the authentication process fails to verify the user, the method 1600 returns to or terminates at step 1604 as shown, and the user removes the device 1100 from the RF field and begins again at step 1602. Ask for that. If the user is verified by the authentication process, the method continues to process 1610, where the device 1100 performs a communication handshake process with the reader / writer device via contactless bi-directional communication. . In step 1612, the device 1100 continues with the desired processing using the reader / writer device. Once this occurs, the device 1100 is removed from the RF field, thereby turning off power to the device 1100.

Referring now to FIG. 17, in another embodiment, the method 1700 includes an air transportation environment (air).
Figure 2 illustrates the use of the present disclosure in a transportation environment). A traveler who wishes to make a remote booking presents the device (such as device 800 in FIG. 8) to the reader / writer device. In this example, the reader / writer device is attached to a personal computer {"PC (PC)"} via a wired or wireless connection. The PC allows the traveler to access applications, such as a web based flight reservation application.

  In step 1702, a determination is made as to whether the traveler has selected a remote booking and ticketing process. If the traveler chooses such a process, the method 1700 continues to process 1704 where the device 800 verifies the traveler's identity and approves its processing and associated payments. Used in conjunction with a PC and the reader / writer. In addition, flight information is transferred from the reader / writer device into the device 800.

The method 1700 then continues to step 1706 where a determination is made as to whether the traveler has chosen to remotely check in a baggage. If the traveler chooses to check in the baggage remotely, the method 1700 continues to step 1708, where the device 800 is connected to a PC and a reader / writer to verify the traveler's identity. Used in conjunction. In addition, flight and ticket information is read from the device 800 to further automate the baggage check-in process. After the traveler has entered any desired information (e.g., number of bags, etc.), for later transfer and use by the airline ticketing and baggage tracking system, Baggage reference information is transferred into the traveler's device 800.

  Returning to step 1720, if it is determined that the traveler does not select a remote booking and ticketing process, the method 1700 continues to step 1710, where the traveler performs the remote check-in process of step 1704. The device 800 may be used with a counter or self-service kiosk reader / writer device in a similar manner. In particular, the traveler may use the device 800 to verify the traveler's identity and approve any accompanying payments as well as the purchase process. In addition, flight information is transferred into the device 800 from the reader / writer device.

  Continuing to step 1712, the traveler may use the device 800 at a counter or self-service kiosk reader / writer device in a manner similar to the remote baggage check-in process of step 1708. In particular, the traveler may also use the device 800 to verify the traveler's identity, provide flight and ticket information, and store baggage reference information transferred from the reader / writer device. Good.

  After ticketing and baggage check-in, the method 1700 continues to steps 1714, 1716 and 1718, where the traveler presents the device 800 to other reader / writer devices for identification and ticket authentication. May be. For example, this may be done at security checkpoints, gates, and / or at boarding. It will be appreciated that some of the reader / writer devices may be in communication with airlines and / or government databases.

  Referring now to FIG. 18, in another example, a method 1800 illustrates the use of the present disclosure in a health care environment. In step 1802, a determination is made as to whether the patient desires to perform a pre-check-in process before arriving at a health care facility. If it is determined that the patient wishes to perform a preliminary check-in process, the method 1800 continues to process 1804 where the patient presents the device (such as device 800 in FIG. 8) to the reader / writer device. To do. In this example, the reader / writer device is attached to a personal computer via a wired or wireless connection. The PC allows the patient to access applications such as a web-based health care application. Presenting the device at step 1804 identifies the patient, approves payment and health care instructions, and activates medical information {eg, records, prescriptions, etc.}. Is done. The device 800 may also be used to provide medical alerts to the patient.

In step 1806, if the patient did not perform the preliminary check-in process of step 1804, the patient may use the device 800 to perform a similar function in the health care facility. The method then continues to step 1808 where the device is used to access provider services. For example, the device 800 may be used to interact with a reader / writer device of a health care facility desk or workstation {eg, an examination room). This interaction authenticates the patient's identification, provides access to relevant medical records, verifies that the records have been updated, and stores one or more treatments.

  Continuing to step 1810, the patient presents the device 800 to the reader / writer device at the pharmacy. The device 800 is used to authenticate the patient's identity for prescription and provide the prescription to the pharmacy. In addition, the device 800 provides insurance / payment information and allows the patient to approve the process.

  Referring now to FIGS. 19 and 20, in another embodiment, methods 1900 and 2000 illustrate use in the financial transaction environment of the present disclosure. The financial processing environment includes making retail purchases either at a physical store or online (eg, over the Internet). The present disclosure is implemented in a financial processing environment, which identifies a buyer, quickly verifies the buyer's identity at a localized venue, and credits or debits the buyer's identity. In order to ensure the availability and legitimacy of combining and / or funding payments of these accounts into funds, devices such as device 800 of FIG. By using.

  Payment for retail purchases is generally accomplished in one of three ways: cash, or by check or by credit or debit card. In the cache process, there is generally no need to verify the buyer's identity. In a process where a check is used, it is generally necessary to identify the buyer. This identity lighting is done in order for the buyer to present a driver's license, or alternatively an approved identification card, or to indicate the credit-worthiness. Depending on the method of presenting the credit card or telecommunication connection to check security processing to check security processing services to ensure funding availability and legality of the checks presented for payment service to assure fund availability for, and legitimacy of, the check presented Due to or payment).

  In processes where credit or debit cards are used, various procedural mechanisms are generally used to ensure the buyer's identity and the legal ownership of the card presented for the payment process. Has appeared. For example, the payment may be a numerical PIN {"Personal Identification Number"} security code by the buyer and the assumed owner of the card. You may request an entry. Instead, the sales person will send the buyer on the back of the card presented for payment against the requested signature on the purchased receipt provided for the purchased item or service. You may compare the signatures. In some cases, cards have a photo of the card owner on them, and the sales rep will make a quick comparison of this photo with the buyer to establish an identity. You may go. However, both photo comparison and PIN-based card authorization have weakness for identification assurance and both have the potential risk of fraudulent processing. Photos can be forged and PI numbers can be stolen. For online purchases, buyers are not able to provide authorized signatures, no photo comparisons can be made with current processing infrastructure, and PN-based processing can be compromised by identity theft (PIN-based transactons can be compromised with identity theft).

  Referring specifically to FIG. 19, before the device 800 can be used for financial processing, it can be registered by the buyer / owner with the registration of the selected fingerprint pattern in the secured memory of the device 800. Should be initialized. In order to register the selected fingerprint, the device owner holds the device 800 in the RF field generated by the point of sales {“POS”} device, but the point of sale. The sail device may be a kiosk personal computer, cash register, or similar device. In step 1902, the RF energy from the PS device provides power for activation of the device 800 and the display. At step 1904, a determination is made as to whether the device 800 has been used previously. For example, the device 800 may determine whether a fingerprint template analog is already stored in memory. If the device 800 has been used before, the method 1900 ends. If the device has not been used before, the device 800 continues to step 1906 where the owner is prompted to drive the biometric sensor. For example, this imposes the owner to simply touch the biometric sensor 802 on the device 800 with a selected finger or thumb. While the owner is in contact with the biometric sensor 802, the fingerprint information is read by the biometric sensor 802 and stored in the device 800 in steps 1908 and 1910. In step 1912, the owner displays the biometrics until an acknowledgment is displayed on the display 800 that the fingerprint pattern has been successfully registered in the device 800 as an encrypted template. Maintain contact with the target sensor 802.

  Referring specifically to FIG. 20, in order to authorize a payment process in which invoice information is displayed by the PS device, the user of the device 800 was connected to the PS device in step 2002. The device 800 is held in an RF field generated by an RF reader. For example, the user holds the device 810 at a distance of about 6 inches from the RF reader. In step 2004, the user drives the biometric sensor 802 to provide a comparative match with his / her previously registered fingerprint that is securely stored in the memory of the card. (E.g. touch the fingerprint sensor with his / her finger or thumb). A successful match is the encrypted authorization of the cardholder account data and the merchant's management account receivable processing system of the data holder's account Provides a transfer.

At step 2006, a determination is made as to whether the user wishes to transfer electronic receipt information to the device. If not, the method 2000 continues to step 2010 where the device 800 is removed from the RF field. If it is determined in step 2006 that the user wants to transfer electronic receipt information to the device 800, the method 2000 continues to step 2008, where the device 800 stores the information in memory. The method 2000 continues to step 2008 where the device 800 is removed from the RF field.

While the foregoing describes and describes one or more embodiments, it will be understood by those skilled in the art that various changes can be made therein in form and detail without departing from the spirit and scope of the disclosure. Let's go. For example, the present disclosure may be implemented with various forms of elements, such as a watch or watch band, a quilling, or various other physical structures. Accordingly, the claims should be construed in a broad manner as consistent with this disclosure.
For a more complete understanding of the features and advantages of the present invention, reference is made to the detailed description of the invention along with the accompanying figures, in which corresponding numerals in the various drawings refer to corresponding parts. .

1 depicts a standard credit card with a magnetic stripe according to the prior art. It depicts a smart card according to the prior art. 1 depicts a block diagram of a system that enables processing of one embodiment of the present invention. 1 depicts the front side of an exemplary embodiment of a card that allows processing using programmable magnetic stripes made biometrically enabled according to the present invention. FIG. 6 depicts the back of an exemplary embodiment of a card that allows processing using a biometrically enabled programmable magnetic stripe in accordance with the present invention. FIG. 4 depicts a block diagram of a programmable magnetic stripe using multiple inductive coils according to one embodiment of the present invention. A block diagram of a programmable magnetic stripe that uses one induction coil to send emulated time-varying magnetic stripe data directly from a controller on the card to a magnetic card reader according to another embodiment of the present invention. I'm drawing. FIG. 2 depicts an exemplary embodiment of a combined element of a biometrically enabled programmable magnetic stripe on a device for safe physical and commercial processing in accordance with the present invention. 4 is a flowchart of an exemplary authentication method for using a device according to the present invention. 1 depicts an example of an exemplary device that provides biophysical identity verification according to the present invention to provide secure physical and commercial processing in a contactless manner. FIG. 9 depicts an exemplary environment in which the device of FIG. 8 operates in accordance with the present invention. 10 is a flowchart of an exemplary method for using the device of FIG. 8 in the environment of FIG. 9 in accordance with the present invention. FIG. 6 is a diagram illustrating another example of an exemplary device for providing safe physical and commercial processing in a contactless manner using biometrics identity verification according to the present invention. FIG. 12 is an illustration of one embodiment of a biometric sensor used in the device of FIG. 11 according to the present invention. Fig. 13 illustrates the various layers forming one embodiment of the biometric sensor of Fig. 12 according to the present invention. Fig. 12 illustrates the various layers forming part of one embodiment of the device of Fig. 11 according to the present invention. FIG. 12 is a diagram of an exemplary power circuit used in the device of FIG. 11 according to the present invention. 12 is a flowchart of an exemplary method for storing a template fingerprint analog in the device of FIG. 11 in accordance with the present invention. 12 is a flowchart of an exemplary method using the device of FIG. 11 in accordance with the present invention. 12 is a flowchart of an exemplary method of using the device of FIG. 11 in an air transportation environment according to the present invention. 12 is a flowchart of an exemplary method for using the device of FIG. 11 in a health care environment in accordance with the present invention. FIG. 9 is a flowchart of an exemplary method for storing a biometric template analog with the device of FIG. 8 in accordance with the present invention. 9 is a flowchart of an exemplary method for using the device of FIG. 8 in financial processing in accordance with the present invention.

Claims (92)

In the device, the device is a base,
A magnetic field generator (308) disposed within the base and being normally inactive;
A biometric sensor (310) installed on the substrate;
A memory (312) disposed within the base;
A processor (314) disposed within the substrate and communicatively coupled to the magnetic field generator (308), the biometric sensor (310), and the memory (312), the processor (314) processes the biometric information received from the biometric sensor (310) to verify that the user is authorized to use the device, and the user is verified And is operable to activate the magnetic field generator (308), and a device is also disposed within the base, the magnetic field generator (308), the biometric sensor (310) and the processor (314) The apparatus characterized by comprising the power supply electrically connected to.   The apparatus of claim 1, wherein the magnetic field generator (308) creates a time-varying magnetic signal to emulate data obtained from swiping a magnetic stripe card through a magnetic card reader (330). .   The apparatus of claim 1, wherein the magnetic field generator (308) comprises a programmable magnetic stripe (308, 500, 550). The programmable magnetic stripe (500, 550)
Either a magnetic stripe (502) that is placed on or disposed within the base; and
One or more induction coils (552 or 518-530) disposed in the base under the magnetic stripe (502); and the one or more induction coils (518-530) disposed in the base And a controller operable to generate a spatially or temporally varying magnetic signal via the one or more induction coils (518-530) and the magnetic stripe (502). 532). The apparatus of claim 3, further comprising:   5. The apparatus of claim 4, wherein the magnetic signal comprises binary data describing a user name, a user number, and a device expiration date.   The apparatus of claim 4, wherein the magnetic stripe (502) has three tracks, each track having a set of magnetic data cells (504-516).   The apparatus of claim 1, wherein the processor (314) comprises a smart card processor and an ASIC chip.   The apparatus of claim 1, wherein the power source (316) is controlled by a power management unit (318).   The apparatus of claim 1, wherein the power source (316) is selected from the group consisting of a battery, a piezoelectric generator, a solar panel, an electromagnetic energy converter, a kinetic energy converter, and combinations thereof. The power source (316)
A battery (1406);
A power generator (1402);
Electrically connected to the power generator (1402) and operable to convert the power received from the power generator (1402) into power usable by the device or to charge the battery (1406) A converter (1404);
A battery management unit (1408) connected to the battery (1406), and connected to the power management unit (1408) and the converter (1404), from the battery management unit (1408) to the converter (1404) ), Or a power multiplexer operable to determine whether to draw power from both.   The apparatus of claim 1, wherein the biometric sensor (310) is selected from the group consisting of a fingerprint sensor, a retina sensor, an iris sensor or a voice sensor.   The apparatus of claim 1, wherein the biometric sensor (310) comprises a matrix of points operable to detect high and low points corresponding to fingerprint peaks and valleys.   The biometric sensor (310) includes a radiator (1302-1310) and a detector (1312-1322), and light projected from the radiator (1302-1310) is emitted from the user's finger. The apparatus of claim 1, wherein the apparatus is reflected to a detector (1312-1322).   The apparatus of claim 1, further comprising a user interface (320) installed on the board, communicatively connected to the processor (314), and electrically connected to the power source (316). Of the device.   15. The apparatus of claim 14, wherein the user interface (320) is selected from the group consisting of a touchpad, one or more buttons, a display, and a voice sensor.   An output interface (326) installed on the board, communicatively connected to the processor (314), and electrically connected to the power source (316). 1 of the apparatus.   17. The apparatus of claim 16, wherein the output interface (326) is selected from the group consisting of a radio communication antenna and an optical transmitter.   A smart card interface (324) installed on the board, communicatively connected to the processor (314), and electrically connected to the power source (316). The apparatus according to Item 1.   A contactless interface (322) disposed in the base, communicatively connected to the processor (314), and electrically connected to the power source (316). The apparatus according to Item 1.   20. The apparatus of claim 19, wherein the contactless interface (322) is selected from the group consisting of a wireless communication antenna and an optical transceiver.   The apparatus of claim 1 wherein the base is somewhat flexible.   The infrastructure is integrated in a card selected from the group consisting of an access card, a credit card, a debit card, an identification card, a mini card, a security card, a built-in value card and a card for a specific vendor. The apparatus of claim 1.   The apparatus of claim 1, wherein the base is integrated within a travel credential selected from the group consisting of a passport, an immigration card and a visa.   The apparatus of claim 1, wherein the infrastructure is integrated within a personal communication device selected from the group consisting of a personal data assistant, a telecommunications device, a pager, a computer and an email transceiver.   2. The apparatus of claim 1, wherein the base is integrated into a personal device / possession selected from the group consisting of a watch, jewelery, keyling, tag and glasses.   The apparatus of claim 1, wherein the processor (314) and the memory (312) are integrated into one integrated circuit.   The apparatus of claim 1, wherein the memory (312) comprises a biometric analog of a user.   The processor of claim 1, wherein the processor (314) provides binary data to the magnetic field generator (308) after a user is authenticated using the biometric sensor (310). apparatus.   The apparatus of claim 1, wherein the processor (314) deactivates the magnetic field generator (308) after the magnetic field generator (308) has been active for a specified time. .   The processor of claim 1, wherein the processor (314) deactivates the magnetic field generator (308) when the biometric sensor (310) no longer detects the authorized user. apparatus. In a method of enabling processing using a device having information associated with one or more users, a normally inert magnetic field generator (308), and a biometric sensor (310). Receiving the authentication data from the biometric sensor (310);
Determining whether the authentication data is valid for one of the users, and whenever the authentication data is valid, activates the magnetic field generator (308) and accompanies the authenticated user Generating a magnetic signal corresponding to the information.   32. The method of claim 31, wherein the information associated with the authenticated user allows approval of the process.   32. The method of claim 31, further comprising activating the magnetic field generator (308) and generating a magnetic signal that allows denial of the process whenever the authentication data is not valid. Method. 32. The method of claim 31, further comprising receiving one or more activation parameters.   The one or more activation parameters include detecting data from the biometric sensor (310), detecting external signals, or receiving data from a user interface (320). 35. The method of claim 34, characterized in that   32. The method of claim 31, wherein the process is an access process, a control process, a financial process, a commercial process, or an identification process.   32. The method of claim 31, wherein determining whether the authentication data is valid comprises comparing the authentication data to one or more biometric templates stored on the device.   32. The method of claim 31, wherein the magnetic signal is a time-varying magnetic signal for emulating data obtained from swiping a magnetic stripe card through a magnetic card reader (330).   32. The method of claim 31, further comprising deactivating the magnetic field generator (308) after the magnetic field generator (308) has been active for a specified time.   The method of claim 31, further comprising the step of deactivating the magnetic field generator (308) when the biometric sensor (310) no longer detects the authorized user. .   32. The method of claim 31, further comprising selecting the information to enable the processing.   32. The method of claim 31, wherein the magnetic signal is a time-varying magnetic signal to emulate the data obtained from swiping a magnetic stripe card through a magnetic card reader (330).   32. The method of claim 31, further comprising displaying information to the user.   The method of claim 31, further comprising the step of transmitting the information associated with the user via a wireless communication antenna. 32. The method of claim 31, further comprising: receiving power from an external power source in a non-contact manner; and converting the power received from the external power source into power compatible with the device. Method. Enabling processing using a device having information associated with one or more users, a magnetic field generator (308) that is normally inert, and a biometric sensor (310); A computer program embodied in a computer readable medium, the computer program comprising:
A code segment for receiving authentication data from the biometric sensor (310);
A code segment for determining whether the authentication data is valid for one of the users, and whenever the authentication data is valid, the magnetic field generator (308) is activated and the authenticated user And a code segment for generating a magnetic signal corresponding to the information attached to the computer program.   47. The magnetic stripe program of claim 46, wherein the information associated with the authenticated user enables approval of the process.   Further comprising a code segment for activating the magnetic field generator (308) and generating a magnetic signal that allows denial of the process whenever the authentication data is not valid. 46 of the computer programs.   47. The computer program product of claim 46, further comprising a code segment for receiving one or more activation parameters.   Whether the one or more activation parameters are a process of detecting data from the biometric sensor (310), a process of detecting an external signal, or a process of receiving data from a user interface (320). 50. The computer program of claim 49, comprising:   The computer program according to claim 46, wherein the process is an access process, a control process, a financial process, a commercial process, or an identification process.   The code segment for determining whether the authentication data is valid comprises comparing the authentication data to one or more biometric templates stored on the device. 46 of the computer programs.   47. The computer program product of claim 46, wherein the magnetic signal is a time-varying magnetic signal for emulating data resulting from swiping a magnetic stripe card through a magnetic card reader.   47. The code segment of claim 46, further comprising a code segment for deactivating the magnetic field generator (308) after the magnetic field generator (308) has been active for a specified time. The computer program.   47. A code segment for further deactivating the magnetic field generator (308) when the biometric sensor (310) no longer detects the authorized user. The computer program.   49. The computer program of claim 46, further comprising a code segment for selecting the information to enable the processing.   47. The computer program product of claim 46, wherein the magnetic signal is a time-varying magnetic signal for emulating the data obtained from swiping a magnetic stripe card through a magnetic card reader.   47. The computer program of claim 46, further comprising a code segment for displaying information to the user.   47. The computer program product of claim 46, further comprising a code segment for transmitting the information associated with the user via a wireless communication antenna. In a system, the system
One or more user devices, each user device (302)
The foundation,
A magnetic field generator (308) disposed within the base and being normally inactive;
A biometric sensor (310) installed on the substrate;
A memory (312) disposed within the substrate and a device disposed within the substrate and communicatively coupled to the magnetic field generator (308), the biometric sensor (310) and the memory (312) A processor (314), the processor (314) receiving from the biometric sensor (310) to verify that the user is authorized to use the device Operable to process information and to activate the magnetic field generator (308) when the user is verified, and each user device is also disposed within the base, and the magnetic field generator (308 ), A power source (316) electrically connected to the biometric sensor (310) and the device processor (314);
One or more system interfaces (304) operable to communicate with the user device (302), and a system processor (306) communicatively coupled to the one or more system interfaces (304) The system comprising:   The one or more system interfaces (304) may be an optical interface (336), a smart card interface (334), a wireless communication interface (332), a magnetic reader (330), an initialization interface (328) or 61. The system of claim 60, comprising a recharger.   61. The system of claim 60, further comprising a database (338) communicatively coupled to the system processor (306).   61. The system of claim 60, further comprising one or more remote computers (342) communicatively connected to the system processor (306) via a network (340).   61. The system of claim 60, wherein the magnetic field generator (308) creates a time varying magnetic signal to emulate data obtained from swiping a magnetic stripe card through a magnetic card reader.   61. The system of claim 60, wherein the magnetic field generator (308) comprises a programmable magnetic stripe (308, 500, 550). The programmable magnetic stripe (500, 550)
Either a magnetic stripe (502) that is placed on or disposed within the substrate; and
One or more induction coils (550 or 518-530) disposed in the base under the magnetic stripe (502), and the one or more induction coils (550 or 518) disposed in the base A controller (532) connected to the one or more induction coils (550 or 518-530) and the magnetic stripe (502). 66. The system of claim 65. 67. The system of claim 66, wherein the magnetic signal comprises binary data describing a user name, user number, and device expiration date.   67. The system of claim 66, wherein the magnetic stripe (502) comprises three tracks, each track having a set of magnetic data cells (504-516).   61. The system of claim 60, wherein the device processor (314) comprises a smart card processor and an ASIC chip.   61. The system of claim 60, wherein the power source (316) is controlled by a power management unit (318).   61. The system of claim 60, wherein the power source (316) is selected from the group consisting of a battery, a piezoelectric generator, a solar panel, an electromagnetic energy converter, a kinetic energy converter, and combinations thereof. The power source (316)
Battery (1406),
Power generator (1402),
Electrically connected to the power generator (1402) and operable to convert power received from the power generator (1402) into power usable by the device or to charge the battery (1406) A converter (1404),
A battery management unit (1408) connected to the battery (1406), and connected to the battery management unit (1408) and the converter (1404) to transfer power from the battery management unit (1408); 61. The system of claim 60, comprising a power multiplexer operable to determine whether to derive from the converter (1404) or both.   61. The system of claim 60, wherein the biometric sensor (310) is selected from the group consisting of a fingerprint sensor, a retina sensor, an iris sensor or a voice sensor.   61. The system of claim 60, wherein the biometric sensor (310) comprises a matrix of points operable to detect high and low points corresponding to fingerprint peaks and valleys.   The biometric sensor (310) includes a radiator (1302-1310) and a detector (1312-1322), and light projected from the radiator (1302-1310) is emitted from the user's finger. 61. The system of claim 60, wherein the system is reflected to the detector (1312-1322).   The system further comprises a user interface (320) installed on the board, communicatively connected to the device processor (314), and electrically connected to the power source (316). Item 60. The system according to Item 60.   77. The system of claim 76, wherein the user interface (320) is selected from the group consisting of a touchpad, one or more buttons, a display, and a voice sensor. An output interface (326) installed on the board, communicatively connected to the device processor (314), and electrically connected to the power supply (316). Item 60. The system according to Item 60.   79. The system of claim 78, wherein the output interface (326) is selected from the group consisting of a radio communication antenna and an optical transmitter.   And a smart card interface (324) installed on the board, communicatively connected to the device processor (314), and electrically connected to the power source (316). 61. The system of claim 60.   And a contactless interface (322) disposed in the base, communicatively connected to the device processor (314), and electrically connected to the power source (316). 61. The system of claim 60.   83. The system of claim 81, wherein the contactless interface (322) is selected from the group consisting of a wireless communication antenna and an optical transceiver.   61. The system of claim 60, wherein the base is somewhat flexible.   The base is integrated into a card selected from the group consisting of an access card, a credit card, a debit card, an identification card, a mini card, a security card, a built-in value card and a card for a specific vendor. 61. The system of claim 60.   61. The system of claim 60, wherein the infrastructure is integrated within a travel credential selected from the group consisting of a passport, an immigration card and a visa.   61. The system of claim 60, wherein the infrastructure is integrated into a personal communication device selected from the group consisting of a personal data assistant, a telecommunications device, a pager, a computer and an email transceiver.   61. The system of claim 60, wherein the base is integrated into a personal device / property selected from the group consisting of watches, jewelery, quilling, tags and glasses.   61. The system of claim 60, wherein the device processor (314) and the memory (312) are integrated into one integrated circuit.   61. The system of claim 60, wherein the memory (312) comprises a user biometric analog.   63. The device of claim 60, wherein the device processor (314) provides binary data to the magnetic field generator (308) after a user is authenticated using the biometric sensor (310). The system.   61. The device of claim 60, wherein the device processor (314) deactivates the magnetic field generator (308) after the magnetic field generator (308) has been active for a specified time. system. 61. The method of claim 60, wherein the device processor (314) deactivates the magnetic field generator (308) when the biometric sensor (310) no longer detects the authorized user. system.

Images